{"id":"zeroclaw-labs-zeroclaw","name":"zeroclaw","homepage":"https://www.zeroclawlabs.ai/","repo_url":"https://github.com/zeroclaw-labs/zeroclaw","category":"ai-ml","subcategories":[],"tags":["ai-ml","agents","personal-assistant","self-hosted","messaging","automation","tools","rust"],"what_it_does":"ZeroClaw is a local-first, single-binary Rust personal AI assistant you run on your own devices. It provides a gateway/control plane with a web dashboard to manage an always-on assistant that can connect to multiple chat/communication channels (e.g., WhatsApp/Telegram/Slack/Discord/Signal/Email/Matrix/IRC/etc.), integrate with hardware peripherals (e.g., ESP32/STM32/Arduino/Raspberry Pi GPIO), and run autonomous/\"hands\" workflows, SOPs, and tools (including mentions of MCP and many integrations).","use_cases":["Personal AI assistant that lives on your own hardware and stays online","Multi-channel personal inbox/assistant for DMs and inbound messages","Local autonomous workflows/SOPs with approvals and sandbox/policy controls","Managing agent actions and memory via a local web dashboard","Connecting external devices/peripherals to agent workflows","Integrating with common LLM providers via OAuth/API-key auth profiles with model/provider failover"],"not_for":["Untrusted multi-user deployments without strong isolation and DM policy controls","Use as a hosted SaaS where uptime/SLA is required","Scenarios requiring a standardized public REST/GraphQL API contract for third-party developers","Environments where you cannot safely operate an always-on process that can access messaging channels and tool execution"],"best_when":"You want an on-device, always-on personal assistant that can manage many communication channels and tools under configurable autonomy and sandbox policies.","avoid_when":"You need a simple, documented public API surface for programmatic third-party clients, or you cannot control/monitor local security settings for DM pairing/allowlisting and tool access.","alternatives":["Open-source self-hosted agent frameworks (e.g., OpenWebUI/LM Studio + custom agents)","Other local-first personal assistant projects (e.g., OpenClaw, if applicable)","Commercial hosted AI assistants for simpler setup (less control)"],"af_score":37.5,"security_score":56.5,"reliability_score":32.5,"package_type":"skill","discovery_source":["openclaw"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-29T13:07:49.564245+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["OAuth (provider-specific, including OpenAI Codex subscription; Gemini via Google OAuth; Anthropic API key or auth token)","API keys / auth tokens for providers (Anthropic; and installer example suggests passing an API key)"],"oauth":true,"scopes":false,"notes":"Auth model includes subscription-based OAuth for some providers and API key/token auth for others; documentation suggests provider/profile rotation and failover, but the README excerpt does not specify fine-grained OAuth scopes or how tokens are scoped/rotated internally."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Pricing for ZeroClaw itself is not described in the provided README excerpt; it likely depends on your selected LLM/provider usage and any third-party channel integrations."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":37.5,"security_score":56.5,"reliability_score":32.5,"mcp_server_quality":30.0,"documentation_accuracy":55.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":55.0,"rate_limit_clarity":50.0,"tls_enforcement":70.0,"auth_strength":75.0,"scope_granularity":40.0,"dependency_hygiene":45.0,"secret_handling":45.0,"security_notes":"README highlights several security features: DM pairing/allowlist by default for unknown senders, explicit opt-in for public inbound DMs, autonomy levels with approval gating, sandboxing layers (path traversal blocking, command allowlisting, forbidden paths like /etc,/root,~/.ssh), and rate limiting/cost caps. However, the excerpt does not provide detailed guidance on TLS configuration requirements, token storage/redaction practices, precise scope granularity, or dependency vulnerability management.","uptime_documented":10.0,"version_stability":55.0,"breaking_changes_history":35.0,"error_recovery":30.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["ZeroClaw is an always-on, multi-channel agent; inbound DMs should be treated as untrusted and require pairing/allowlisting per the documented default DM policy.","Autonomy levels (ReadOnly/Supervised/Full) and sandbox/policy controls are critical; agents should respect and not bypass these controls.","The README excerpt mentions many tools and MCP, but the provided content does not expose a clear, machine-consumable MCP tool schema or public agent SDK contract."]}}